CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2025/12/26 3:15 a.m.•2 views

CVE-2025-68939

Gitea before 1.23.0 allows attackers to add attachments with forbidden file extensions by editing an attachment name via an attachment API...

5.3CVSS6.8AI score

Exploits0References3

RedhatCVE•added 2025/02/05 10:52 p.m.•5 views

CVE-2022-1058

Open Redirect on login in GitHub repository go-gitea/gitea prior to 1.16.5...

7.2CVSS6.6AI score0.03083EPSS

Exploits1References1

OSV•added 2024/08/21 2:30 p.m.•8 views

GO-2022-0309 Cross Site Request Forgery in Gitea in github.com/go-gitea/gitea

Cross Site Request Forgery in Gitea in github.com/go-gitea/gitea...

8.8CVSS8.7AI score0.00153EPSS

Exploits0References5

Positive Technologies•added 2024/05/31 12:0 a.m.•1 views

PT-2024-5577 · Gitea · Gitea

Name of the Vulnerable Software and Affected Versions: Gitea Open Source Git Server version 1.22.0 Description: The issue affects Gitea Open Source Git Server due to improper neutralization of input during web page generation, allowing Stored XSS. This can enable a remote attacker to conduct a...

10CVSS8.1AI score0.25195EPSS

Exploits3References13

Veracode•added 2022/02/09 10:37 a.m.•22 views

Remote Code Execution (RCE)

github.com/go-gitea/gitea is vulnerable to remote code execution. The vulnerability exists because of the reliance on protection mechanism of HTTP permission methods, allowing an attacker to bypass intended access restrictions and to perform the malicious operations remotely...

9.8CVSS3.5AI score0.02283EPSS

Exploits0References5Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by